Principal Specialist, Global Cybersecurity

To deliver on our purpose on making wonderful sound part of everyone’s life, we are strengthening our cybersecurity capabilities with an additional passionate and purpose-driven Principal Cybersecurity Specialist, focusing on Operational Technology (OT). We have a rapidly growing team of 8 professionals responsible for Products, Risk and InfoSec.
- Responsibilities include: _

**Operational Technology (OT) Architecture**
- Recommend, develop and implement advanced security concepts in the field of OT security, such as back-up, network segmentation or hardening concepts
- Be responsible for the evaluation and recommendation of security solutions for OT, and actively contribute to security architectures for OT
- Conduct technical analysis of business needs to identify the best OT solution to provide the services required.

**OT Security rollout**
- Take over a driving role in global projects to improve cyber security in manufacturing sites worldwide (China, Philippines, Poland, Singapore and Mexico)
- Provide active support to equipment owners and equipment maintenance in the security lifecycle management of complex production systems and manufacturing equipment
- Collaborate cross-functionally and cross-regionally with experts in production automation, IT and cyber security to ensure security-by-design
- Provide support to the manufacturing site in vulnerability management and incident response.

**OT infrastructure implementation**
- Support the implementation of OT Infrastructure and Network Security and the collection and reporting of performance metrics
- Conduct and document technical analysis of OT network traffic to identify anomalies which may represent potentially malicious activity or possible threat
- Support Supports other members of the Infrastructure/Network/Cyber Security Team when assistance with different technologies are needed/

**OT Risk Management**
- Provide development guidance and assists in the identification, implementation and maintenance of the Company’s privacy and security policies and procedures
- Perform information security risk analysis and periodic information system activity audits to assess the risk level and vulnerabilities of the security processes
- Results of security audits will be reviewed for corrective action to address any identified vulnerabilities.
- Experience _
- At least 8 years of relevant working experience in the Semiconductor /Manufacturing / Industrial Automation / Industrial Process Control Sector
- Minimum 5 years experience in Enterprise IT or OT (Operational Technology) cyber security domain ideally in the relevant sector (above) or as cyber security consultant
- Experience with defining and implementing Security Architectures and Security concepts for the IT / OT environment including Back-up, Malware Defense, hardening techniques for OT equipment (i.e. Linux and Windows operating systems) and IT / OT network architectures
- Strong understanding of common cybersecurity frameworks for ICS/OT environments (e.g. ISA99/IEC 62443, CIS, NIS SP 800-82, ISO 27001 etc.) is a plus
- CISM, CRISC, COBIT, CISSP certification or equivalent preferred.
- Performance and Personal Competencies _
- Plans and Aligns: sets objectives to align with broader organizational goals; breaks down objectives into appropriate initiatives, milestones and actions
- Drives Engagement: structures the work so it aligns with people’s goals; makes each person feel his/her contributions are important; invites input
- Manage Complexity: asks the right questions to accurately analyze situations; acquires data from diverse sources when solving problems; uncovers root causes to difficult problems
- Drive positive communication to engage leaders and team members across the globe.